tricot/src/main.rs

#[macro_use]
extern crate anyhow;

use futures::TryFutureExt;
use std::net::SocketAddr;
use structopt::StructOpt;

mod cert;
mod cert_store;
mod consul;
mod http;
mod https;
mod proxy_config;
mod reverse_proxy;
mod tls_util;

use log::*;

#[derive(StructOpt, Debug)]
#[structopt(name = "tricot")]
struct Opt {
	/// Address of consul server
	#[structopt(
		long = "consul-addr",
		env = "TRICOT_CONSUL_HOST",
		default_value = "http://127.0.0.1:8500"
	)]
	pub consul_addr: String,

	/// Prefix of Tricot's entries in Consul KV space
	#[structopt(
		long = "consul-kv-prefix",
		env = "TRICOT_CONSUL_KV_PREFIX",
		default_value = "tricot/"
	)]
	pub consul_kv_prefix: String,

	/// Node name
	#[structopt(long = "node-name", env = "TRICOT_NODE_NAME", default_value = "<none>")]
	pub node_name: String,

	/// Bind address for HTTP server
	#[structopt(
		long = "http-bind-addr",
		env = "TRICOT_HTTP_BIND_ADDR",
		default_value = "0.0.0.0:80"
	)]
	pub http_bind_addr: SocketAddr,

	/// Bind address for HTTPS server
	#[structopt(
		long = "https-bind-addr",
		env = "TRICOT_HTTPS_BIND_ADDR",
		default_value = "0.0.0.0:443"
	)]
	pub https_bind_addr: SocketAddr,

	/// E-mail address for Let's Encrypt certificate requests
	#[structopt(long = "letsencrypt-email", env = "TRICOT_LETSENCRYPT_EMAIL")]
	pub letsencrypt_email: String,

	/// Enable compression of responses
	#[structopt(long = "enable-compression", env = "TRICOT_ENABLE_COMPRESSION")]
	pub enable_compression: bool,

	/// Mime types for which to enable compression (comma-separated list)
	#[structopt(
		long = "compress-mime-types",
		env = "TRICOT_COMPRESS_MIME_TYPES",
		default_value = "text/html,text/plain,text/css,text/javascript,application/javascript,image/svg+xml,font/ttf"
	)]
	pub compress_mime_types: String,
}

#[tokio::main(flavor = "multi_thread", worker_threads = 10)]
async fn main() {
	if std::env::var("RUST_LOG").is_err() {
		std::env::set_var("RUST_LOG", "tricot=info")
	}
	pretty_env_logger::init();

	// Abort on panic (same behavior as in Go)
	std::panic::set_hook(Box::new(|panic_info| {
		error!("{}", panic_info.to_string());
		std::process::abort();
	}));

	let opt = Opt::from_args();

	info!("Starting Tricot");

	let consul = consul::Consul::new(&opt.consul_addr, &opt.consul_kv_prefix, &opt.node_name);
	let mut rx_proxy_config = proxy_config::spawn_proxy_config_task(consul.clone());

	let cert_store = cert_store::CertStore::new(
		consul.clone(),
		rx_proxy_config.clone(),
		opt.letsencrypt_email.clone(),
	);

	tokio::spawn(http::serve_http(opt.http_bind_addr, consul.clone()).map_err(exit_on_err));

	let https_config = https::HttpsConfig {
		bind_addr: opt.https_bind_addr,
		enable_compression: opt.enable_compression,
		compress_mime_types: opt
			.compress_mime_types
			.split(",")
			.map(|x| x.to_string())
			.collect(),
	};
	tokio::spawn(
		https::serve_https(https_config, cert_store.clone(), rx_proxy_config.clone())
			.map_err(exit_on_err),
	);

	while rx_proxy_config.changed().await.is_ok() {
		info!("Proxy config:");
		for ent in rx_proxy_config.borrow().entries.iter() {
			info!("   {}", ent);
		}
	}
}

fn exit_on_err(e: anyhow::Error) {
	error!("{}", e);
	std::process::exit(1);
}
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`#[macro_use]`
			`extern crate anyhow;`

Exit more agressively on certain errors 2021-12-08 16:50:40 +00:00			`use futures::TryFutureExt;`
Add support for custom headers 2021-12-07 17:19:51 +00:00			`use std::net::SocketAddr;`
Watch multiple consul nodes 2021-12-07 16:56:15 +00:00			`use structopt::StructOpt;`

Retrieve let's encrypt certificates 2021-12-07 12:50:44 +00:00			`mod cert;`
			`mod cert_store;`
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`mod consul;`
Retrieve let's encrypt certificates 2021-12-07 12:50:44 +00:00			`mod http;`
Got a reverse proxy 2021-12-07 14:20:45 +00:00			`mod https;`
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`mod proxy_config;`
Got a reverse proxy 2021-12-07 14:20:45 +00:00			`mod reverse_proxy;`
Improved management of ACME orders and certificate pre-expiration period 2021-12-09 11:18:23 +00:00			`mod tls_util;`
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00
			`use log::*;`

Watch multiple consul nodes 2021-12-07 16:56:15 +00:00			`#[derive(StructOpt, Debug)]`
			`#[structopt(name = "tricot")]`
			`struct Opt {`
			`/// Address of consul server`
Better handle get_cert for https request (faster path, hostname verification) 2021-12-07 17:50:58 +00:00			`#[structopt(`
			`long = "consul-addr",`
			`env = "TRICOT_CONSUL_HOST",`
Tolerate ending / in Consul address 2021-12-08 11:10:58 +00:00			`default_value = "http://127.0.0.1:8500"`
Better handle get_cert for https request (faster path, hostname verification) 2021-12-07 17:50:58 +00:00			`)]`
Watch multiple consul nodes 2021-12-07 16:56:15 +00:00			`pub consul_addr: String,`

			`/// Prefix of Tricot's entries in Consul KV space`
Better handle get_cert for https request (faster path, hostname verification) 2021-12-07 17:50:58 +00:00			`#[structopt(`
			`long = "consul-kv-prefix",`
			`env = "TRICOT_CONSUL_KV_PREFIX",`
			`default_value = "tricot/"`
			`)]`
Watch multiple consul nodes 2021-12-07 16:56:15 +00:00			`pub consul_kv_prefix: String,`

			`/// Node name`
			`#[structopt(long = "node-name", env = "TRICOT_NODE_NAME", default_value = "<none>")]`
			`pub node_name: String,`
Add support for custom headers 2021-12-07 17:19:51 +00:00
			`/// Bind address for HTTP server`
Better handle get_cert for https request (faster path, hostname verification) 2021-12-07 17:50:58 +00:00			`#[structopt(`
			`long = "http-bind-addr",`
			`env = "TRICOT_HTTP_BIND_ADDR",`
			`default_value = "0.0.0.0:80"`
			`)]`
Add support for custom headers 2021-12-07 17:19:51 +00:00			`pub http_bind_addr: SocketAddr,`

			`/// Bind address for HTTPS server`
Better handle get_cert for https request (faster path, hostname verification) 2021-12-07 17:50:58 +00:00			`#[structopt(`
			`long = "https-bind-addr",`
			`env = "TRICOT_HTTPS_BIND_ADDR",`
			`default_value = "0.0.0.0:443"`
			`)]`
Add support for custom headers 2021-12-07 17:19:51 +00:00			`pub https_bind_addr: SocketAddr,`
Let's encrypt email address as parameter 2021-12-08 11:16:28 +00:00
			`/// E-mail address for Let's Encrypt certificate requests`
Try to fix things 2021-12-08 12:28:07 +00:00			`#[structopt(long = "letsencrypt-email", env = "TRICOT_LETSENCRYPT_EMAIL")]`
Let's encrypt email address as parameter 2021-12-08 11:16:28 +00:00			`pub letsencrypt_email: String,`
Compression 2021-12-09 14:43:19 +00:00
			`/// Enable compression of responses`
			`#[structopt(long = "enable-compression", env = "TRICOT_ENABLE_COMPRESSION")]`
			`pub enable_compression: bool,`

			`/// Mime types for which to enable compression (comma-separated list)`
			`#[structopt(`
			`long = "compress-mime-types",`
			`env = "TRICOT_COMPRESS_MIME_TYPES",`
Better compression choices 2021-12-09 15:03:19 +00:00			`default_value = "text/html,text/plain,text/css,text/javascript,application/javascript,image/svg+xml,font/ttf"`
Compression 2021-12-09 14:43:19 +00:00			`)]`
			`pub compress_mime_types: String,`
Watch multiple consul nodes 2021-12-07 16:56:15 +00:00			`}`

Got a reverse proxy 2021-12-07 14:20:45 +00:00			`#[tokio::main(flavor = "multi_thread", worker_threads = 10)]`
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`async fn main() {`
Retrieve let's encrypt certificates 2021-12-07 12:50:44 +00:00			`if std::env::var("RUST_LOG").is_err() {`
Logging output improvements 2021-12-08 10:24:25 +00:00			`std::env::set_var("RUST_LOG", "tricot=info")`
Retrieve let's encrypt certificates 2021-12-07 12:50:44 +00:00			`}`
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`pretty_env_logger::init();`
Watch multiple consul nodes 2021-12-07 16:56:15 +00:00
Exit more agressively on certain errors 2021-12-08 16:50:40 +00:00			`// Abort on panic (same behavior as in Go)`
			`std::panic::set_hook(Box::new(\|panic_info\| {`
			`error!("{}", panic_info.to_string());`
			`std::process::abort();`
			`}));`

Watch multiple consul nodes 2021-12-07 16:56:15 +00:00			`let opt = Opt::from_args();`

First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`info!("Starting Tricot");`

Watch multiple consul nodes 2021-12-07 16:56:15 +00:00			`let consul = consul::Consul::new(&opt.consul_addr, &opt.consul_kv_prefix, &opt.node_name);`
Locking to avoid flooding Let's encrypt 2021-12-07 16:05:25 +00:00			`let mut rx_proxy_config = proxy_config::spawn_proxy_config_task(consul.clone());`
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00
Try to fix things 2021-12-08 12:28:07 +00:00			`let cert_store = cert_store::CertStore::new(`
			`consul.clone(),`
			`rx_proxy_config.clone(),`
			`opt.letsencrypt_email.clone(),`
			`);`
Exit more agressively on certain errors 2021-12-08 16:50:40 +00:00
			`tokio::spawn(http::serve_http(opt.http_bind_addr, consul.clone()).map_err(exit_on_err));`
Compression 2021-12-09 14:43:19 +00:00
			`let https_config = https::HttpsConfig {`
			`bind_addr: opt.https_bind_addr,`
			`enable_compression: opt.enable_compression,`
			`compress_mime_types: opt`
			`.compress_mime_types`
			`.split(",")`
			`.map(\|x\| x.to_string())`
			`.collect(),`
			`};`
Exit more agressively on certain errors 2021-12-08 16:50:40 +00:00			`tokio::spawn(`
Compression 2021-12-09 14:43:19 +00:00			`https::serve_https(https_config, cert_store.clone(), rx_proxy_config.clone())`
			`.map_err(exit_on_err),`
Exit more agressively on certain errors 2021-12-08 16:50:40 +00:00			`);`
not much 2021-12-06 22:40:41 +00:00
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`while rx_proxy_config.changed().await.is_ok() {`
Add support for custom headers 2021-12-07 17:19:51 +00:00			`info!("Proxy config:");`
			`for ent in rx_proxy_config.borrow().entries.iter() {`
Logging output improvements 2021-12-08 10:24:25 +00:00			`info!(" {}", ent);`
Add support for custom headers 2021-12-07 17:19:51 +00:00			`}`
First commit to Tricot, a replacement for Traefik v1 2021-12-06 22:08:22 +00:00			`}`
			`}`
Exit more agressively on certain errors 2021-12-08 16:50:40 +00:00
Cargo clippy 2021-12-09 11:20:37 +00:00			`fn exit_on_err(e: anyhow::Error) {`
Exit more agressively on certain errors 2021-12-08 16:50:40 +00:00			`error!("{}", e);`
			`std::process::exit(1);`
			`}`